YoU are GeTTing HaCKed! -'Cloak and Dagger Attack'
Android users may want to keep a close eye on the apps they download onto their devices as researchers have discovered a series of vulnerabilities in the operating system that relies on two particular Android permissions to work. Dubbed Cloak & Dagger by the research team that discovered the vulnerability, the attack relies on abusing the SYSTEM_ALERT_WINDOW and BIND_ACCESSIBILITY_SERVICE permissions in order to compromise the system. System vulnerabilities The way the exploit works is pretty straightforward: a malicious app gets downloaded and installed to the Android device, with the necessary permissions being granted without requiring the user’s input. From there, hackers are able to perform Clickjacking, record keystrokes, phishing, and even installing a God-mode app, all without the user being aware of it. God-mode-app Illustrate the danger that the vulnerability poses, the researchers have prepared three videos...